How severe is CVE-2022-40296?

CVE-2022-40296 has a CVSS v3 score of 9.8 (CRITICAL).

CVE-2022-40296

Name: php_point_of_sale
Author: phppointofsale

9.8CRITICAL

The application was vulnerable to a Server-Side Request Forgery attacks, allowing the backend server to interact with unexpected endpoints, potentially including internal and local services, leading

发布于: 10/31/2022更新于: 5/6/2025

描述

The application was vulnerable to a Server-Side Request Forgery attacks, allowing the backend server to interact with unexpected endpoints, potentially including internal and local services, leading to attacks in other downstream systems.

AI分析AI驱动

受影响产品

phppointofsalephp_point_of_sale

19.0

参考资料

https://www.themissinglink.com.au/security-advisories/cve-2022-40296
Third Party Advisory
https://www.themissinglink.com.au/security-advisories/cve-2022-40296
Third Party Advisory